Allowing app to be used in iFrames for custom domains

Hi everyone,

My company just created a new tenant to split environments. But the chosen solution is the New Universal Login experience.
I have an app that I want to access from another app, and we served it in an iFrame allowing the embedded app to auto-login using the same tenant as the ancestor app.
I can’t anymore.

The solution where it would be possible to customise the CSP would be perfect, setting only our company domains as allowed ancestors. :pray: